Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm security access manager for enterprise single sign-on 8.2 vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv3
CVE-2014-0160
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 prior to 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote malicious users to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrat...
Openssl OpensslFilezilla-project Filezilla ServerSiemens Application Processing Engine Firmware 2.0Siemens Cp 1543-1 Firmware 1.1Siemens Simatic S7-1500 Firmware 1.5Siemens Simatic S7-1500t Firmware 1.5Siemens Elan-8.2Siemens Wincc Open Architecture 3.12Intellian V100 Firmware 1.20Intellian V100 Firmware 1.21Intellian V100 Firmware 1.24Intellian V60 Firmware 1.15Intellian V60 Firmware 1.25Mitel Micollab 6.0Mitel Micollab 7.0Mitel Micollab 7.1Mitel Micollab 7.2Mitel Micollab 7.3.0.104Mitel Micollab 7.3Mitel Mivoice 1.1.3.3Mitel Mivoice 1.2.0.11Mitel Mivoice 1.3.2.2
NA
CVE-2013-5420
The IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to read log files by leveraging helpdesk privileges for a direct request.
Ibm Security Access Manager For Enterprise Single Sign-on 8.2
NA
CVE-2013-6745
Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to inject arbitrary web script or HTML via crafted input to an unspecified dynamic web form.
Ibm Security Access Manager For Enterprise Single Sign-on 8.2
NA
CVE-2013-5421
Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote malicious users to inject arbitrary web script or HTML via crafted input to an unspecified dynamic web form.
Ibm Security Access Manager For Enterprise Single Sign-on 8.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injectCVE-2024-34001CVE-2024-37018LFICVE-2024-1275CVE-2024-1086CSRFCVE-2024-31030CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook